Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c5e31ecf-52a4-4677-9103-5f37a4091d75/0/3130332e3138342e31342e302f32332d3234203d3e20313439373135.roa
File: 3130332e3138342e31342e302f32332d3234203d3e20313439373135.roa (raw, json)
Hash identifier: er7VxHw3cverVEgEo/3oWbnc8s1aWy89KU07LwZCwdQ=
Subject key identifier: 70:C7:64:A4:D3:97:64:6E:3A:26:69:26:05:72:2C:42:15:37:89:2E
Certificate issuer: /CN=01DF4BADDE0B23C16F941DC3468443771C193624
Certificate serial: 733BC264EF3E7D57E4FEE502870EDCC878415FCB
Authority key identifier: 01:DF:4B:AD:DE:0B:23:C1:6F:94:1D:C3:46:84:43:77:1C:19:36:24
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01DF4BADDE0B23C16F941DC3468443771C193624.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c5e31ecf-52a4-4677-9103-5f37a4091d75/0/3130332e3138342e31342e302f32332d3234203d3e20313439373135.roa
Signing time: Sun 23 Feb 2025 19:00:02 +0000
ROA not before: Sun 23 Feb 2025 18:55:02 +0000
ROA not after: Sun 22 Feb 2026 19:00:02 +0000
asID: 149715
IP address blocks: 103.184.14.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:3b:c2:64:ef:3e:7d:57:e4:fe:e5:02:87:0e:dc:c8:78:41:5f:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01DF4BADDE0B23C16F941DC3468443771C193624
Validity
Not Before: Feb 23 18:55:02 2025 GMT
Not After : Feb 22 19:00:02 2026 GMT
Subject: CN=70C764A4D397646E3A26692605722C421537892E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0a:bd:18:38:b8:cb:cc:03:98:76:60:03:ca:
59:2b:0b:1b:e9:0d:63:88:ce:31:dd:de:01:c2:a3:
2f:60:79:10:d2:c3:38:1f:41:ea:1e:00:da:03:89:
91:99:e3:2d:4a:3e:7c:da:cc:d9:39:a2:5d:2c:16:
a7:da:05:f1:f3:5c:ce:67:d9:af:d7:bd:39:ff:14:
c7:5a:45:9e:0e:48:69:fc:6d:42:fd:42:6f:32:ad:
4b:1e:76:d2:db:72:32:f6:33:ce:04:88:15:77:dd:
69:c5:c2:b5:33:28:ea:35:b2:18:0c:26:36:8f:87:
64:c5:87:58:51:5b:8f:43:b3:04:18:9a:c5:d5:3e:
d8:bd:e1:01:e1:eb:48:54:64:10:ec:b1:2f:70:cf:
44:47:c7:fd:1c:d6:ee:49:db:20:b3:8c:1e:90:34:
b3:9c:8a:8b:87:de:4a:9b:a4:8e:cc:64:79:8b:93:
b9:51:ad:5f:9c:5d:1f:6b:21:85:1e:58:c9:9f:18:
f9:d1:0f:31:f5:18:84:b8:22:13:3e:41:91:ef:c5:
a4:4a:b2:64:c8:96:6b:bd:7c:ae:13:e8:dd:1d:37:
81:c9:b9:91:8a:7f:55:21:fd:29:ff:16:ed:d7:33:
a2:68:0c:e4:cf:d5:a1:2c:9b:3a:a4:4b:73:bb:b6:
fe:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C7:64:A4:D3:97:64:6E:3A:26:69:26:05:72:2C:42:15:37:89:2E
X509v3 Authority Key Identifier:
keyid:01:DF:4B:AD:DE:0B:23:C1:6F:94:1D:C3:46:84:43:77:1C:19:36:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c5e31ecf-52a4-4677-9103-5f37a4091d75/0/01DF4BADDE0B23C16F941DC3468443771C193624.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01DF4BADDE0B23C16F941DC3468443771C193624.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5e31ecf-52a4-4677-9103-5f37a4091d75/0/3130332e3138342e31342e302f32332d3234203d3e20313439373135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.14.0/23
Signature Algorithm: sha256WithRSAEncryption
80:7b:d6:16:f8:20:be:1d:bb:d6:be:b0:13:fb:79:c9:4f:f0:
3a:2e:ef:fa:76:34:46:2c:31:a6:8b:4e:f4:b8:1a:07:7a:7a:
de:ca:e2:7a:c1:b8:0b:7a:7e:31:21:16:40:e5:87:bf:be:e1:
cd:86:05:65:ae:d5:08:f3:dc:f2:90:40:26:48:bc:f6:c7:8a:
80:88:02:d1:20:ee:90:88:53:af:78:53:d8:24:41:66:e0:47:
d7:05:9d:1b:d1:a2:67:8c:f0:8d:fc:4d:47:75:0f:ed:15:9f:
c7:be:d6:10:35:4e:2c:f6:cb:46:bd:de:2b:0b:3b:aa:db:de:
5f:5f:15:07:7c:9c:c6:c3:bd:0e:46:2a:cc:39:9e:79:e5:30:
33:0e:12:c9:53:f3:e4:39:9b:10:99:6f:e5:71:48:8b:c4:60:
b1:0d:c6:6d:80:94:3a:13:ab:c6:aa:08:3c:44:d0:13:b7:a3:
a1:88:9e:9d:dd:0c:91:b7:c9:a5:48:cc:17:93:2c:f2:eb:76:
ba:da:a9:5b:f8:8e:eb:77:9c:61:16:d5:d8:97:cb:4f:63:4e:
36:bc:19:f8:83:2f:12:58:93:cb:c0:08:29:6a:91:ce:1f:47:
f0:17:d8:30:19:12:02:e7:33:eb:a2:97:04:01:20:e6:2e:69:
ed:94:ad:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:30 2025 by rpki-client